Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/LIU8XVqiEB_MbwUXssOjwg6jNos.roa
File: LIU8XVqiEB_MbwUXssOjwg6jNos.roa (raw, json)
Hash identifier: BDKvZIh09fT/MtAiuE9yhQQY4K+12+Z56QIpsSFjw9s=
Subject key identifier: 2C:85:3C:5D:5A:A2:10:1F:CC:6F:05:17:B2:C3:A3:C2:0E:A3:36:8B
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01857139CC549AD88748D5D89CD9F7D0AF96
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/LIU8XVqiEB_MbwUXssOjwg6jNos.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3169
IP address blocks: 37.140.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cc:54:9a:d8:87:48:d5:d8:9c:d9:f7:d0:af:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c853c5d5aa2101fcc6f0517b2c3a3c20ea3368b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:d8:41:f2:d9:4c:60:40:01:19:fa:33:56:1d:
89:58:7d:c6:7e:da:86:e2:89:a3:f5:85:6b:a8:9a:
55:91:6e:46:f8:cb:2f:c7:29:8e:8f:be:14:0d:4e:
53:f3:6d:ec:29:59:31:e4:4f:29:03:e3:66:6d:ae:
d2:08:54:42:16:1a:51:7e:f1:74:18:83:8a:f1:68:
01:ae:e1:9b:e8:55:85:02:be:a1:d4:e4:0e:47:4a:
90:be:d0:11:ac:97:a1:d9:21:56:dd:5d:9d:73:92:
87:eb:47:39:6e:b7:b7:16:be:26:44:b0:99:0f:c2:
2b:49:98:b9:4b:fc:60:1c:db:d9:5c:e5:52:b3:b7:
38:5f:80:02:03:99:b2:40:3e:a6:d5:f6:d1:67:9a:
03:4f:16:15:1c:2d:33:4c:3c:e6:9f:46:fa:fb:13:
ae:3a:7d:95:b5:8e:f7:29:c3:b2:4e:ca:28:23:7f:
99:81:7c:bd:81:d8:8e:4d:c5:95:56:88:82:ee:31:
a2:1f:7e:bc:92:17:97:b3:c3:c4:41:28:d1:dc:07:
95:6e:84:67:24:53:17:98:8c:48:83:8c:33:e8:ea:
db:61:ca:ff:7b:4c:4b:9c:d7:f3:66:c1:44:85:54:
84:86:21:f0:a9:3f:3b:63:44:5b:ca:1e:f9:6b:b3:
e1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:85:3C:5D:5A:A2:10:1F:CC:6F:05:17:B2:C3:A3:C2:0E:A3:36:8B
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/LIU8XVqiEB_MbwUXssOjwg6jNos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.217.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:89:4e:b2:5b:2a:37:22:cc:45:30:00:0a:7b:3b:77:f4:6e:
2f:d8:a3:22:02:d5:11:7c:3f:12:43:4b:a7:6b:dc:cb:28:84:
6a:93:d5:bc:1e:2f:2c:ee:c1:23:59:3f:70:65:8c:c7:10:88:
82:9c:a3:cf:1b:23:af:1e:f8:cf:1f:9d:5c:53:88:89:59:de:
f7:d2:64:6b:b8:ae:72:2a:b8:85:22:3e:86:76:26:71:6d:ed:
bc:da:c7:fe:52:0e:d6:43:6b:b2:35:d3:05:86:04:d2:fc:76:
78:6e:b7:59:94:ef:c0:59:f4:89:96:0b:e8:ac:8a:13:4a:59:
00:de:eb:cf:ea:de:a2:7f:6e:36:f2:ea:74:f1:65:99:be:a3:
81:9d:71:1a:dd:c2:16:18:a2:a3:b9:5e:9a:f6:dc:e0:0d:f7:
43:4f:21:55:2b:88:56:80:19:51:e2:a5:c7:38:70:47:ee:a6:
b4:24:6e:65:a1:28:b0:58:54:19:b0:0d:ab:c9:e8:24:86:ae:
3e:2e:5d:55:a2:d8:ed:a5:91:a3:dc:2b:4b:f7:72:21:fd:01:
66:50:b9:bd:b2:09:85:ce:a6:68:4e:91:de:d3:61:1d:f1:69:
20:fb:a7:0e:96:45:cd:64:32:0e:6b:d2:6d:86:dd:b8:18:c0:
f5:85:41:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxOcxUmtiHSNXYnNn30K+WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4OGY1YjIxMGYzYzNlYjQyMDY1OTYwZTg1ZDA2MWU5ZDlk
NjNhYjgwHhcNMjMwMTAyMDY0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzg1M2M1ZDVhYTIxMDFmY2M2ZjA1MTdiMmMzYTNjMjBlYTMzNjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9hB8tlMYEABGfozVh2JWH3GftqG
4omj9YVrqJpVkW5G+MsvxymOj74UDU5T823sKVkx5E8pA+Nmba7SCFRCFhpRfvF0
GIOK8WgBruGb6FWFAr6h1OQOR0qQvtARrJeh2SFW3V2dc5KH60c5bre3Fr4mRLCZ
D8IrSZi5S/xgHNvZXOVSs7c4X4ACA5myQD6m1fbRZ5oDTxYVHC0zTDzmn0b6+xOu
On2VtY73KcOyTsooI3+ZgXy9gdiOTcWVVoiC7jGiH368kheXs8PEQSjR3AeVboRn
JFMXmIxIg4wz6OrbYcr/e0xLnNfzZsFEhVSEhiHwqT87Y0Rbyh75a7PhpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCyFPF1aohAfzG8FF7LDo8IOozaLMB8GA1UdIwQY
MBaAFHiPWyEPPD60IGWWDoXQYenZ1jq4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUk5YklRODhQclFnWlpZT2hkQmg2ZG5XT3JnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9lMTAwYjUtNmYwYS00ZmU5LWJlZmIt
YzRhY2I4OTY5YzQ5LzEvTElVOFhWcWlFQl9NYndVWHNzT2p3ZzZqTm9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9lMTAwYjUtNmYwYS00ZmU5LWJlZmItYzRhY2I4OTY5YzQ5
LzEvZUk5YklRODhQclFnWlpZT2hkQmg2ZG5XT3JnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJYzZMA0G
CSqGSIb3DQEBCwUAA4IBAQCciU6yWyo3IsxFMAAKezt39G4v2KMiAtURfD8SQ0un
a9zLKIRqk9W8Hi8s7sEjWT9wZYzHEIiCnKPPGyOvHvjPH51cU4iJWd730mRruK5y
KriFIj6GdiZxbe282sf+Ug7WQ2uyNdMFhgTS/HZ4brdZlO/AWfSJlgvorIoTSlkA
3uvP6t6if2428up08WWZvqOBnXEa3cIWGKKjuV6a9tzgDfdDTyFVK4hWgBlR4qXH
OHBH7qa0JG5loSiwWFQZsA2ryegkhq4+Ll1VotjtpZGj3CtL93Ih/QFmULm9sgmF
zqZoTpHe02Ed8Wkg+6cOlkXNZDIOa9Jtht24GMD1hUEj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:29 2024 by rpki-client on console-ams.rpki-client.org